Route Origin Authorization
$ rpki-client -vvf rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC49944671B11EEA00127754AD9E6FC.roa
File: 6DC49944671B11EEA00127754AD9E6FC.roa (raw, json)
Hash identifier: 7vEI5TuhX9iLMnnAEeYkGqMX9HRoXNVAi+76LeY2hnA=
Subject key identifier: 7B:87:00:15:7A:54:D8:8C:0C:BF:2A:D3:8B:FF:69:A5:03:65:C0:E8
Certificate issuer: /CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Certificate serial: 3E05
Authority key identifier: 79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
Authority info access: rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
Subject info access: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC49944671B11EEA00127754AD9E6FC.roa
Signing time: Tue 10 Oct 2023 03:16:40 +0000
ROA not before: Tue 10 Oct 2023 03:16:37 +0000
ROA not after: Mon 30 Sep 2024 03:16:37 +0000
asID: 133771
IP address blocks: 45.195.252.0/22 maxlen: 24
Validation: OK
Signature path: rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.mft
rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.crl
rsync://rpki.afrinic.net/repository/arin/uHxadfPZV0E6uZhkaUbUVB1RFFU.mft
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/arin-to-afrinic.cer
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.crl
rsync://rpki.afrinic.net/repository/04E8B0D80F4D11E0B657D8931367AE7D/62gPOPXWxxu0sQa4vQZYUBLaMbY.mft
rsync://rpki.afrinic.net/repository/AfriNIC.cer
Signature path expires: Thu 09 May 2024 00:16:20 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 15877 (0x3e05)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=F368F2D0AR/serialNumber=797D88D813E20FFF982CC7419E969BAEA6BFD69B
Validity
Not Before: Oct 10 03:16:37 2023 GMT
Not After : Sep 30 03:16:37 2024 GMT
Subject: CN=6524c218-4dc7
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ad:ff:97:8a:81:3c:68:e0:59:93:fe:ad:57:78:
85:bd:65:5c:05:e6:a1:e4:dc:6d:48:91:27:c5:b9:
b9:53:e8:76:52:2c:69:9b:c9:4f:0b:f1:40:81:1c:
94:cc:83:9f:b8:5e:a2:e7:c1:b9:3b:ab:d0:1c:59:
ae:5f:33:5f:1e:c7:92:79:2d:1d:e7:9c:af:9c:2d:
25:8c:9d:3e:5c:af:da:9e:9d:c5:36:e8:c6:12:8f:
72:32:67:74:85:af:c8:b7:70:87:ec:92:6d:a8:0b:
79:01:d2:40:d6:4a:f7:db:97:fb:bf:ae:d0:e7:a8:
01:24:6e:6d:62:b8:98:33:c9:f0:90:1d:ca:78:94:
98:3b:dc:6d:8a:bb:22:0b:2d:82:8b:7e:00:0d:e0:
1e:56:29:b6:65:75:77:2e:6d:65:3e:a2:a2:de:28:
f9:ac:04:0d:e5:c0:63:41:83:df:b5:dc:0a:fe:c1:
fa:ac:04:6a:4d:9d:bf:e8:02:56:68:9d:37:80:47:
07:d1:4c:c6:22:56:a3:e2:fc:bd:4b:74:bb:17:f2:
af:02:9b:b5:ff:99:95:5d:61:34:95:21:26:f4:e7:
30:28:12:d6:57:62:90:f2:97:34:52:ad:99:da:3b:
39:57:fc:70:17:a3:f2:fe:52:6e:2e:be:11:c6:82:
eb:a3
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7B:87:00:15:7A:54:D8:8C:0C:BF:2A:D3:8B:FF:69:A5:03:65:C0:E8
X509v3 Authority Key Identifier:
keyid:79:7D:88:D8:13:E2:0F:FF:98:2C:C7:41:9E:96:9B:AE:A6:BF:D6:9B
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/eX2I2BPiD_-YLMdBnpabrqa_1ps.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.afrinic.net/repository/arin/eX2I2BPiD_-YLMdBnpabrqa_1ps.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://rpki.afrinic.net/policy/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.afrinic.net/repository/member_repository/F368F2D0/92F86E1C6E0511E8A1B5854BF8AEA228/6DC49944671B11EEA00127754AD9E6FC.roa
RPKI Notify - URI:https://rrdp.afrinic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
45.195.252.0/22
Signature Algorithm: sha256WithRSAEncryption
b4:c9:77:ab:c4:cc:84:7b:d9:da:6e:39:3d:8e:33:85:fd:22:
e7:c5:fd:4c:5d:66:a4:00:f8:9b:68:61:83:87:1a:58:42:8f:
04:c9:a9:be:e3:c3:5a:4a:78:42:2e:b8:4a:76:59:b7:f1:f3:
0c:fa:e5:a3:1e:9d:51:e4:5a:46:76:3c:bb:26:a4:71:3c:d3:
6e:4f:c5:59:08:88:dd:17:1a:ee:19:a7:a3:52:8b:92:ac:57:
76:46:16:36:71:f5:f6:4f:39:e8:65:2d:69:8d:4c:de:aa:85:
f9:6a:52:32:78:ed:4c:ac:97:61:10:c9:44:ad:d7:ce:28:04:
af:58:7d:4a:78:3b:66:1d:ca:6b:31:65:a7:8f:6e:8e:da:9b:
18:4a:76:3f:ff:31:ff:0f:b8:e4:63:69:02:2e:54:01:6b:2a:
f3:5d:48:ec:19:ee:56:67:f9:55:56:91:8f:6e:26:9e:ed:7f:
d0:55:3d:68:a4:09:86:d1:e3:12:d5:84:0c:dc:cc:4b:1f:fb:
82:11:47:44:21:06:6d:b3:30:11:f8:17:71:ab:e1:89:6f:9f:
43:d4:e2:bd:c5:24:bd:32:75:e1:9e:1a:c7:25:eb:5e:2f:dd:
41:35:26:a2:29:86:bd:9b:80:70:36:40:93:1b:e5:0e:1a:ba:
37:1a:70:bc
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Tue May 7 01:58:03 2024 by rpki-client on console-fra.rpki-client.org